CNNVD-202507-3236 Information

CNNVD ID

CNNVD-202507-3236

Related CVE

CVE-2025-38407

• CNNVD Published: 2025-07-25

Description (Chinese)

Linux kernel是美国Linux基金会的开源操作系统Linux所使用的内核。 Linux kernel存在安全漏洞，该漏洞源于riscv架构cpu_ops_sbi模块使用动态分配内存导致物理地址无效，可能导致系统挂起。

Description (English)

Linux Kernel is the kernel used by Linux, the Open Source Operator System of the Linux Foundation of the United States. Linux Kernel had a security loophole, which stemmed from the use of dynamic distribution memory in the riscv architecture cpu ops sbi module, which resulted in invalid physical addresses and could lead to the system being hung up.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

Linux

Published

2025-07-25

Last Modified

2026-02-24

References

https://git.kernel.org/stable/c/2b29be967ae456fc09c320d91d52278cf721be1e https://git.kernel.org/stable/c/02c725cd55eb5052b88eeaa3f60a391ef4dcaec5 https://git.kernel.org/stable/c/f5fe094f35a37adea40b2fd52c99bb1333be9b07 https://vigilance.fr/vulnerability/Linux-kernel-multiple-vulnerabilities-dated-28-07-2025-47798

Patch

https://www.kernel.org/